$ rpki-client -vvf repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft File: BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft (raw, json) Hash identifier: dVXDJExeXX4QjD/RbAAhzpAS7j0Yd+BLWazUwo/5ONA= Subject key identifier: 12:44:68:27:72:D6:1A:6C:AC:9F:7E:87:52:0F:35:77:E3:44:BE:74 Authority key identifier: BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1 Certificate issuer: /CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1 Certificate serial: 1FB06E1B34D089F32EF5458D1C3B97E95D6DAC34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft Manifest number: 022A Signing time: Sun 08 Jun 2025 01:51:24 +0000 Manifest this update: Sun 08 Jun 2025 01:46:24 +0000 Manifest next update: Wed 11 Jun 2025 10:51:24 +0000 Files and hashes: 1: 3130332e3130352e3139342e302f32342d3234203d3e20313336383738.roa (hash: S9T4Njr1S5t2cL0qzbEw2qPQzlgOAecG0HGE00Slwz4=) 2: 3130332e3130352e3139352e302f32342d3234203d3e20313336383738.roa (hash: OJOE/7q58wvHc3CR/aklsOVCRBylBzz1DBZTUwMunAw=) 3: BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl (hash: 83CzjJrp90w241f0HGV5sYQuX/9gFbzPkOToO+Ckz+w=) 4: 3130332e3130352e3139322e302f32342d3234203d3e20313336383738.roa (hash: A4bow00kXpDEKr/WErM916lCjp+QBUm74+vgJ+iFoLw=) 5: 3130332e3130352e3139332e302f32342d3234203d3e20313337333136.roa (hash: CbT0hYzhheMonOPehO3no/mVI5bpvSbduL61mPpJvUQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b0:6e:1b:34:d0:89:f3:2e:f5:45:8d:1c:3b:97:e9:5d:6d:ac:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1 Validity Not Before: Jun 8 01:46:24 2025 GMT Not After : Jun 11 10:51:24 2025 GMT Subject: CN=1244682772D61A6CAC9F7E87520F3577E344BE74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:05:15:b8:4e:2c:d8:f6:4c:89:9a:f0:cb:73: 1d:80:1c:fb:83:4f:e7:c4:03:2f:a7:ef:9c:71:49: 93:30:1d:66:34:67:65:86:8e:85:78:15:ca:76:3c: 3f:d3:cd:46:02:b8:eb:2e:96:c6:68:c0:1f:bd:df: 43:25:c2:da:74:cc:d5:25:5c:1c:59:c7:71:5d:07: f2:9b:71:2f:74:c2:26:da:6d:c3:60:6c:0d:52:5f: d6:21:73:01:b3:15:7f:5f:54:43:57:08:53:4e:7b: 29:6d:81:75:d7:15:38:48:43:5d:21:6f:ad:55:46: b4:3e:3a:a1:68:9b:d1:a7:e4:97:86:62:43:42:6b: 44:ae:b8:61:57:36:1e:4e:f2:a3:58:40:fd:a3:c4: e9:f7:a2:76:d8:99:2d:31:ef:a3:72:b6:f4:e3:0a: 00:61:78:f6:3e:f5:a8:e1:dd:c4:d8:9f:b2:a0:bb: 2c:b7:fa:c8:e5:96:e6:7a:c6:ab:c1:48:82:be:6e: 40:e5:10:82:ff:b6:da:68:05:5c:95:b4:9e:47:3f: a7:f7:fe:5b:24:b5:90:4b:1c:47:57:dc:35:7e:3b: e7:6c:66:38:63:34:ea:55:17:89:fe:24:8a:90:a2: 46:4f:24:96:a0:6f:4d:7d:37:28:80:9d:65:89:30: c5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:44:68:27:72:D6:1A:6C:AC:9F:7E:87:52:0F:35:77:E3:44:BE:74 X509v3 Authority Key Identifier: keyid:BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d0:69:e3:b7:12:78:86:50:7b:6a:bb:16:10:77:7e:46:41:8f: 60:91:82:18:02:fb:15:62:53:8e:6a:96:23:c9:b1:29:66:1b: d8:14:28:ab:e9:c0:4f:7d:8c:c4:e9:4a:a6:0c:b3:ee:b1:7d: d7:2c:4c:27:2d:42:b7:2b:f8:2e:e2:97:07:21:d6:b3:c1:4e: 66:b5:0c:5b:ed:c0:25:65:96:d4:82:20:a7:93:3a:e6:84:85: 46:5c:77:14:c9:7d:b7:df:83:a7:26:07:75:76:d1:53:61:be: cf:e6:35:6d:53:5d:1a:95:d9:29:48:7e:e7:d4:83:40:4c:af: 26:74:d1:1a:aa:76:c7:78:24:8f:4a:b2:17:ce:47:e1:3d:44: 62:b1:a5:f3:2c:05:42:0a:c0:93:3d:77:fe:07:dc:40:61:0f: 32:4d:65:79:7a:65:30:1b:b4:63:f9:5a:4e:b7:8d:1e:33:7e: 4f:64:e3:a3:68:bc:1d:d9:e5:16:f8:11:92:fe:f6:67:1d:a7: 84:67:2d:6d:97:e5:a9:45:31:7f:58:dc:f5:be:27:f6:94:ab: f6:a4:07:52:14:42:fa:6a:4e:ff:17:40:29:e2:1f:49:86:5c: 3b:2d:1a:f2:7c:22:3b:1b:cd:99:04:48:68:16:de:a9:37:e2: 35:65:6b:62 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUH7BuGzTQifMu9UWNHDuX6V1trDQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBFMDE0 NzQyNDRCMTAeFw0yNTA2MDgwMTQ2MjRaFw0yNTA2MTExMDUxMjRaMDMxMTAvBgNV BAMTKDEyNDQ2ODI3NzJENjFBNkNBQzlGN0U4NzUyMEYzNTc3RTM0NEJFNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoBRW4TizY9kyJmvDLcx2AHPuD T+fEAy+n75xxSZMwHWY0Z2WGjoV4Fcp2PD/TzUYCuOsulsZowB+930Mlwtp0zNUl XBxZx3FdB/KbcS90wibabcNgbA1SX9YhcwGzFX9fVENXCFNOeyltgXXXFThIQ10h b61VRrQ+OqFom9Gn5JeGYkNCa0SuuGFXNh5O8qNYQP2jxOn3onbYmS0x76NytvTj CgBhePY+9ajh3cTYn7Kguyy3+sjlluZ6xqvBSIK+bkDlEIL/ttpoBVyVtJ5HP6f3 /lsktZBLHEdX3DV+O+dsZjhjNOpVF4n+JIqQokZPJJagb019NyiAnWWJMMXhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEkRoJ3LWGmysn36HUg81d+NEvnQwHwYDVR0j BBgwFoAUvV1Gtb/nLyqhGIqQlrEOAUdCRLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTI0ZmE5YS1lNWYzLTQyNjUtOWUxZC04NGU0NTM1OTYxZDAvMC9CRDVENDZCNUJG RTcyRjJBQTExODhBOTA5NkIxMEUwMTQ3NDI0NEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBFMDE0NzQy NDRCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDkyNGZhOWEtZTVmMy00MjY1LTll MWQtODRlNDUzNTk2MWQwLzAvQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBF MDE0NzQyNDRCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANBp47cSeIZQe2q7FhB3fkZBj2CRghgC+xVi U45qliPJsSlmG9gUKKvpwE99jMTpSqYMs+6xfdcsTCctQrcr+C7ilwch1rPBTma1 DFvtwCVlltSCIKeTOuaEhUZcdxTJfbffg6cmB3V20VNhvs/mNW1TXRqV2SlIfufU g0BMryZ00Rqqdsd4JI9KshfOR+E9RGKxpfMsBUIKwJM9d/4H3EBhDzJNZXl6ZTAb tGP5Wk63jR4zfk9k46NovB3Z5Rb4EZL+9mcdp4RnLW2X5alFMX9Y3PW+J/aUq/ak B1IUQvpqTv8XQCniH0mGXDstGvJ8IjsbzZkESGgW3qk34jVla2I= -----END CERTIFICATE-----Generated at Sun Jun 8 07:16:49 2025 by rpki-client